Add STSAFE-A120 Support #9614

dgarske · 2026-01-06T00:38:14Z

Add STSAFE-A120 Support via STSELib

Description

This PR adds support for the ST STSAFE-A120 secure element using the open-source STSELib SDK. The STSAFE-A120 is ST's latest secure element with enhanced cryptographic capabilities and is the successor to the STSAFE-A100/A110 series.

Changes

Files Modified:

wolfcrypt/src/port/st/stsafe.c - Added STSAFE-A120/STSELib implementation
wolfssl/wolfcrypt/port/st/stsafe.h - Added type abstractions and curve mappings
wolfcrypt/src/wc_port.c - Updated STSAFE initialization
wolfcrypt/src/port/st/README.md - Added documentation

Features

True Random Number Generation (TRNG) - Hardware RNG for seeding wolfSSL's RNG
ECC Key Generation - P-256 and P-384 key pair generation in secure element
ECDSA Sign/Verify - Hardware-accelerated ECDSA operations
ECDH Shared Secret - Elliptic curve Diffie-Hellman key exchange
Device Certificate - Read X.509 certificates from secure storage
Crypto Callbacks - Full integration with wolfSSL's crypto callback mechanism

Configuration

Enable with:

#define WOLFSSL_STSAFEA120Optional defines:
#define USE_STSAFE_RNG_SEED    /* Use STSAFE for RNG seeding */
#define WOLF_CRYPTO_CB         /* Enable crypto callbacks */
#define STSAFE_I2C_BUS 1       /* I2C bus number (default: 1) */

Dependencies

STSELib - ST Secure Element Library (BSD-3-Clause)
- Available from: https://github.com/STMicroelectronics/STSELib
- Requires platform abstraction layer implementation

API Compatibility

The new implementation maintains API compatibility with the existing STSAFE-A100 code:

stsafe_interface_init() - Initialize device
wolfSSL_STSAFE_CryptoDevCb() - Crypto callback handler
SSL_STSAFE_* callback functions for TLS integration

Testing

Tested on Raspberry Pi 5 with STSAFE-A120 connected via I2C:

Echo command ✅
Random number generation ✅
ECC P-256 key generation ✅
ECC P-384 key generation ✅
ECDSA P-256 sign/verify ✅
ECDSA P-384 sign/verify ✅
Crypto callback integration ✅

Performance (Raspberry Pi 5)

Operation	Time
ECC P-256 KeyGen	~40 ms
ECDSA P-256 Sign	~51 ms
ECDSA P-256 Verify	~79 ms
RNG (256 bytes)	<1 ms

Notes

The STSELib uses conditional compilation for ECC curves via stse_conf.h
Curve ID values in stsafe.h depend on which curves are enabled in stse_conf.h
Default configuration enables NIST P-256 and P-384

check-all-return-codes snippet: Capture the return value of stsafe_interface_init() in wolfCrypt_Init and, if it is non-zero, propagate or handle the error (e.g., ret = stsafe_interface_init(); if (ret != 0) return ret;).
no-memory-leaks snippet: After copying the shared secret, add XFREE(sharedSecret, NULL, DYNAMIC_TYPE_TMP_BUFFER); (and similarly free other SDK-allocated buffers such as pubX/pubY, signature, readBuf, echo_resp) before the function returns.
limit-stack-usage snippet: Replace large local buffers (e.g., sigRS, pubKeyX, pubKeyY in SSL_STSAFE_VerifyPeerCertCb) with heap allocations under the WOLFSSL_SMALL_STACK pattern, freeing them before return.

@dgarske
please take a look at the above issues which Devin flagged. Devin will not fix these issues automatically.

dgarske · 2026-01-07T00:02:26Z

Jenkins retest this please: "AgentOfflineException"

wolfcrypt/src/port/st/stsafe.c

Copilot

Copilot encountered an error and was unable to review this pull request. You can try again by re-requesting a review.

dgarske · 2026-01-12T22:18:43Z

Jenkins retest this please: "AgentOfflineException"

Copilot

Pull request overview

Copilot reviewed 6 out of 6 changed files in this pull request and generated 4 comments.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

wolfcrypt/src/port/st/stsafe.c

Copilot

Copilot encountered an error and was unable to review this pull request. You can try again by re-requesting a review.

Copilot

Pull request overview

Copilot reviewed 6 out of 6 changed files in this pull request and generated 6 comments.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

wolfcrypt/src/port/st/stsafe.c

dgarske · 2026-01-16T18:27:17Z

Jenkins retest this please. AgentOffline

Copilot

Pull request overview

Copilot reviewed 6 out of 6 changed files in this pull request and generated 1 comment.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

wolfcrypt/src/port/st/stsafe.c

dgarske · 2026-01-16T20:52:04Z

Jenkins retest this please

Copilot

Pull request overview

Copilot reviewed 6 out of 6 changed files in this pull request and generated 5 comments.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Copilot · 2026-01-16T23:01:10Z

wolfssl/wolfcrypt/port/st/stsafe.h

+     * With only NIST P-256 and P-384 enabled:
+     *   STSE_ECC_KT_NIST_P_256 = 0, STSE_ECC_KT_NIST_P_384 = 1
+     * NOTE: If other curves are enabled, these values change! */
+    #define STSAFE_ECC_CURVE_P256       0  /* STSE_ECC_KT_NIST_P_256 */
+    #define STSAFE_ECC_CURVE_P384       1  /* STSE_ECC_KT_NIST_P_384 */


The comments warn that these curve ID values depend on stse_conf.h settings and change when other curves are enabled, but there's no compile-time validation. Consider adding static assertions or runtime checks in stsafe_interface_init() to verify that the STSE_ECC_KT_NIST_P_256 and STSE_ECC_KT_NIST_P_384 enum values from STSELib actually match the expected 0 and 1 values when WOLFSSL_STSAFEA120 is defined.

Suggested change

* With only NIST P-256 and P-384 enabled:

* STSE_ECC_KT_NIST_P_256 = 0, STSE_ECC_KT_NIST_P_384 = 1

* NOTE: If other curves are enabled, these values change! */

#define STSAFE_ECC_CURVE_P256 0 /* STSE_ECC_KT_NIST_P_256 */

#define STSAFE_ECC_CURVE_P384 1 /* STSE_ECC_KT_NIST_P_384 */

* With only NIST P-256 and P-384 enabled and no other curves:

* STSE_ECC_KT_NIST_P_256 = 0, STSE_ECC_KT_NIST_P_384 = 1

* NOTE: If other curves are enabled or the order changes in STSELib,

* these values may change. In that case, override the defaults

* below by defining STSAFE_ECC_CURVE_P256 / STSAFE_ECC_CURVE_P384

* (for example via compiler -D flags) to match the actual

* STSE_ECC_KT_NIST_P_256 / STSE_ECC_KT_NIST_P_384 enum values. */

#ifndef STSAFE_ECC_CURVE_P256

#define STSAFE_ECC_CURVE_P256 0 /* Default: STSE_ECC_KT_NIST_P_256 */

#endif

#ifndef STSAFE_ECC_CURVE_P384

#define STSAFE_ECC_CURVE_P384 1 /* Default: STSE_ECC_KT_NIST_P_384 */

#endif

Copilot · 2026-01-16T23:01:11Z

wolfcrypt/src/port/st/stsafe.c

+                        byte ephemeralPubKey[STSAFE_MAX_PUBKEY_RAW_LEN];
+                        int key_sz = stsafe_get_key_size(curve_id);
+                        slot = STSAFE_KEY_SLOT_EPHEMERAL;
+
+                        ret = stse_generate_ecc_key_pair(&g_stse_handler, slot,
+                            (stse_ecc_key_type_t)curve_id,
+                            STSAFE_EPHEMERAL_KEY_USAGE_LIMIT,
+                            ephemeralPubKey);
+                        if (ret != STSE_OK) {
+                            STSAFE_INTERFACE_PRINTF("stse_generate_ecc_key_pair (ephemeral for ECDH) error: %d\n", ret);
+                            rc = (int)ret;
+                        } else {
+                            WOLFSSL_MSG("STSAFE: Generated ephemeral key for ECDH");
+                            /* Update devCtx to reflect ephemeral slot for this key */
+                            if (info->pk.ecdh.private_key != NULL) {
+                                info->pk.ecdh.private_key->devCtx = STSAFE_SLOT_TO_DEVCXT(slot);
+                            }
+                            /* Update the public key in the key structure to match the new ephemeral key */
+                            if (info->pk.ecdh.private_key != NULL && rc == 0) {
+                                void* saved_devCtx = info->pk.ecdh.private_key->devCtx;
+                                rc = wc_ecc_import_unsigned(info->pk.ecdh.private_key,
+                                    ephemeralPubKey, &ephemeralPubKey[key_sz],
+                                    NULL, ecc_curve);
+                                /* Restore devCtx in case import cleared it */
+                                if (saved_devCtx != NULL && info->pk.ecdh.private_key->devCtx != saved_devCtx) {
+                                    info->pk.ecdh.private_key->devCtx = saved_devCtx;
+                                }
+                            }
+                        }


The ephemeralPubKey buffer is declared on stack but could be large (96 bytes for P-384). When WOLFSSL_SMALL_STACK is defined, other buffers in this function are dynamically allocated but ephemeralPubKey is not. For consistency with the WOLFSSL_SMALL_STACK handling elsewhere in the file, consider conditionally allocating this buffer dynamically when WOLFSSL_SMALL_STACK is defined.

Suggested change

byte ephemeralPubKey[STSAFE_MAX_PUBKEY_RAW_LEN];

int key_sz = stsafe_get_key_size(curve_id);

slot = STSAFE_KEY_SLOT_EPHEMERAL;

ret = stse_generate_ecc_key_pair(&g_stse_handler, slot,

(stse_ecc_key_type_t)curve_id,

STSAFE_EPHEMERAL_KEY_USAGE_LIMIT,

ephemeralPubKey);

if (ret != STSE_OK) {

STSAFE_INTERFACE_PRINTF("stse_generate_ecc_key_pair (ephemeral for ECDH) error: %d\n", ret);

rc = (int)ret;

} else {

WOLFSSL_MSG("STSAFE: Generated ephemeral key for ECDH");

/* Update devCtx to reflect ephemeral slot for this key */

if (info->pk.ecdh.private_key != NULL) {

info->pk.ecdh.private_key->devCtx = STSAFE_SLOT_TO_DEVCXT(slot);

}

/* Update the public key in the key structure to match the new ephemeral key */

if (info->pk.ecdh.private_key != NULL && rc == 0) {

void* saved_devCtx = info->pk.ecdh.private_key->devCtx;

rc = wc_ecc_import_unsigned(info->pk.ecdh.private_key,

ephemeralPubKey, &ephemeralPubKey[key_sz],

NULL, ecc_curve);

/* Restore devCtx in case import cleared it */

if (saved_devCtx != NULL && info->pk.ecdh.private_key->devCtx != saved_devCtx) {

info->pk.ecdh.private_key->devCtx = saved_devCtx;

}

}

}

#ifdef WOLFSSL_SMALL_STACK

byte* ephemeralPubKey = NULL;

#else

byte ephemeralPubKey[STSAFE_MAX_PUBKEY_RAW_LEN];

#endif

int key_sz = stsafe_get_key_size(curve_id);

slot = STSAFE_KEY_SLOT_EPHEMERAL;

#ifdef WOLFSSL_SMALL_STACK

ephemeralPubKey = (byte*)XMALLOC(STSAFE_MAX_PUBKEY_RAW_LEN,

NULL, DYNAMIC_TYPE_TMP_BUFFER);

if (ephemeralPubKey == NULL) {

rc = MEMORY_E;

}

#endif

if (rc == 0) {

ret = stse_generate_ecc_key_pair(&g_stse_handler, slot,

(stse_ecc_key_type_t)curve_id,

STSAFE_EPHEMERAL_KEY_USAGE_LIMIT,

ephemeralPubKey);

if (ret != STSE_OK) {

STSAFE_INTERFACE_PRINTF("stse_generate_ecc_key_pair (ephemeral for ECDH) error: %d\n", ret);

rc = (int)ret;

} else {

WOLFSSL_MSG("STSAFE: Generated ephemeral key for ECDH");

/* Update devCtx to reflect ephemeral slot for this key */

if (info->pk.ecdh.private_key != NULL) {

info->pk.ecdh.private_key->devCtx = STSAFE_SLOT_TO_DEVCXT(slot);

}

/* Update the public key in the key structure to match the new ephemeral key */

if (info->pk.ecdh.private_key != NULL && rc == 0) {

void* saved_devCtx = info->pk.ecdh.private_key->devCtx;

rc = wc_ecc_import_unsigned(info->pk.ecdh.private_key,

ephemeralPubKey, &ephemeralPubKey[key_sz],

NULL, ecc_curve);

/* Restore devCtx in case import cleared it */

if (saved_devCtx != NULL && info->pk.ecdh.private_key->devCtx != saved_devCtx) {

info->pk.ecdh.private_key->devCtx = saved_devCtx;

}

}

}

}

#ifdef WOLFSSL_SMALL_STACK

if (ephemeralPubKey != NULL) {

XFREE(ephemeralPubKey, NULL, DYNAMIC_TYPE_TMP_BUFFER);

}

#endif

wolfcrypt/src/port/st/stsafe.c

Copilot · 2026-01-16T23:01:11Z

wolfcrypt/src/port/st/stsafe.c

+    #ifndef STSAFE_HOST_KEY_MAC
+    static const uint8_t g_host_mac_key[16] = {
+        0x00, 0x11, 0x22, 0x33, 0x44, 0x55, 0x66, 0x77,
+        0x88, 0x99, 0xAA, 0xBB, 0xCC, 0xDD, 0xEE, 0xFF
+    };
+    #endif
+    #ifndef STSAFE_HOST_KEY_CIPHER


The example host MAC and cipher keys are hardcoded with predictable values and visible in the binary. While the comment notes these are examples, production code could accidentally use these insecure defaults. Consider either removing these default keys entirely (requiring users to define STSAFE_HOST_KEY_MAC/CIPHER) or using a more prominent warning marker to prevent production use.

Suggested change

#ifndef STSAFE_HOST_KEY_MAC

static const uint8_t g_host_mac_key[16] = {

0x00, 0x11, 0x22, 0x33, 0x44, 0x55, 0x66, 0x77,

0x88, 0x99, 0xAA, 0xBB, 0xCC, 0xDD, 0xEE, 0xFF

};

#endif

#ifndef STSAFE_HOST_KEY_CIPHER

#ifndef STSAFE_HOST_KEY_MAC

#if defined(__GNUC__) || defined(__clang__)

#warning "Insecure example STSAFE host MAC key in use. Define STSAFE_HOST_KEY_MAC with a secure, secret key for production builds."

#elif defined(_MSC_VER)

#pragma message("Insecure example STSAFE host MAC key in use. Define STSAFE_HOST_KEY_MAC with a secure, secret key for production builds.")

#endif

static const uint8_t g_host_mac_key[16] = {

0x00, 0x11, 0x22, 0x33, 0x44, 0x55, 0x66, 0x77,

0x88, 0x99, 0xAA, 0xBB, 0xCC, 0xDD, 0xEE, 0xFF

};

#endif

#ifndef STSAFE_HOST_KEY_CIPHER

#if defined(__GNUC__) || defined(__clang__)

#warning "Insecure example STSAFE host cipher key in use. Define STSAFE_HOST_KEY_CIPHER with a secure, secret key for production builds."

#elif defined(_MSC_VER)

#pragma message("Insecure example STSAFE host cipher key in use. Define STSAFE_HOST_KEY_CIPHER with a secure, secret key for production builds.")

#endif

Copilot · 2026-01-16T23:01:12Z

wolfcrypt/src/port/st/stsafe.c

+                    curve_id = stsafe_get_ecc_curve_id(ecc_curve);
+                    /* Note: STSAFE_ECC_CURVE_P256 is 0, so we can't use STSAFE_DEFAULT_CURVE check.
+                     * Instead, verify the curve_id is valid by checking it's one of the supported curves */
+                    if (curve_id != STSAFE_ECC_CURVE_P256 && curve_id != STSAFE_ECC_CURVE_P384) {


The curve validation at line 1823 explicitly checks only P256 and P384, which will reject valid Brainpool curves even when STSAFE_ECC_CURVE_BP256/BP384 are defined. This validation should be updated to include the Brainpool curves when they are enabled, or use a more flexible validation approach like checking against the key_sz return value from stsafe_get_key_size().

Suggested change

if (curve_id != STSAFE_ECC_CURVE_P256 && curve_id != STSAFE_ECC_CURVE_P384) {

if (curve_id != STSAFE_ECC_CURVE_P256 &&

curve_id != STSAFE_ECC_CURVE_P384

#ifdef STSAFE_ECC_CURVE_BP256

&& curve_id != STSAFE_ECC_CURVE_BP256

#endif

#ifdef STSAFE_ECC_CURVE_BP384

&& curve_id != STSAFE_ECC_CURVE_BP384

#endif

) {

dgarske self-assigned this Jan 6, 2026

dgarske mentioned this pull request Jan 6, 2026

[platform/wolfssl] Add wolfCrypt crypto platform support STMicroelectronics/STSELib#54

Merged

dgarske force-pushed the stsafe-a120 branch from 7a8e71b to 2e8c1da Compare January 6, 2026 22:56

dgarske assigned wolfSSL-Bot and unassigned dgarske Jan 8, 2026

dgarske requested a review from Copilot January 8, 2026 01:27

Copilot started reviewing on behalf of dgarske January 8, 2026 01:27 View session

JacobBarthelmeh requested changes Jan 9, 2026

View reviewed changes

wolfcrypt/src/port/st/stsafe.c Outdated Show resolved Hide resolved

wolfcrypt/src/port/st/stsafe.c Show resolved Hide resolved

wolfcrypt/src/port/st/stsafe.c Outdated Show resolved Hide resolved

JacobBarthelmeh assigned dgarske and unassigned wolfSSL-Bot Jan 9, 2026

Copilot AI reviewed Jan 10, 2026

View reviewed changes

dgarske force-pushed the stsafe-a120 branch from 2e8c1da to 59e6db9 Compare January 12, 2026 20:36

dgarske requested review from JacobBarthelmeh and Copilot January 15, 2026 20:05

dgarske assigned JacobBarthelmeh and wolfSSL-Bot and unassigned dgarske Jan 15, 2026

Copilot started reviewing on behalf of dgarske January 15, 2026 20:09 View session

Copilot AI reviewed Jan 15, 2026

View reviewed changes

wolfcrypt/src/port/st/stsafe.c Outdated Show resolved Hide resolved

wolfcrypt/src/port/st/stsafe.c Show resolved Hide resolved

wolfcrypt/src/port/st/stsafe.c Show resolved Hide resolved

wolfcrypt/src/port/st/stsafe.c Show resolved Hide resolved

dgarske requested a review from Copilot January 16, 2026 00:18

Copilot AI reviewed Jan 16, 2026

View reviewed changes

Copilot started reviewing on behalf of dgarske January 16, 2026 00:52 View session

JacobBarthelmeh requested a review from Copilot January 16, 2026 16:57

Copilot started reviewing on behalf of JacobBarthelmeh January 16, 2026 16:58 View session

Copilot AI reviewed Jan 16, 2026

View reviewed changes

JacobBarthelmeh assigned dgarske and unassigned JacobBarthelmeh Jan 16, 2026

JacobBarthelmeh unassigned wolfSSL-Bot Jan 16, 2026

dgarske added 5 commits January 16, 2026 17:22

Add STSAFE-A120 Support

53f15fb

Cleanup WOLFSL_STSAFE and fix issue with multi-test macros

8056cf1

Fixes for peer review.

74aeb7e

Added ECDHE support

a0d0872

Peer review cleanups. ECDHE improvements.

ed7dcb4

dgarske force-pushed the stsafe-a120 branch from 1dde828 to ed7dcb4 Compare January 16, 2026 17:22

Peer review fixes (thank you copilot)

eef1e7b

dgarske requested a review from Copilot January 16, 2026 19:10

dgarske assigned JacobBarthelmeh and wolfSSL-Bot Jan 16, 2026

Copilot started reviewing on behalf of dgarske January 16, 2026 19:16 View session

Copilot AI reviewed Jan 16, 2026

View reviewed changes

wolfcrypt/src/port/st/stsafe.c Outdated Show resolved Hide resolved

Fix for ephemeral key usage limit.

8f78757

dgarske removed their assignment Jan 16, 2026

JacobBarthelmeh approved these changes Jan 16, 2026

View reviewed changes

JacobBarthelmeh requested a review from Copilot January 16, 2026 22:57

Copilot started reviewing on behalf of JacobBarthelmeh January 16, 2026 22:58 View session

Copilot AI reviewed Jan 16, 2026

View reviewed changes

-     * With only NIST P-256 and P-384 enabled:
-     *   STSE_ECC_KT_NIST_P_256 = 0, STSE_ECC_KT_NIST_P_384 = 1
-     * NOTE: If other curves are enabled, these values change! */
-    #define STSAFE_ECC_CURVE_P256       0  /* STSE_ECC_KT_NIST_P_256 */
-    #define STSAFE_ECC_CURVE_P384       1  /* STSE_ECC_KT_NIST_P_384 */
+     * With only NIST P-256 and P-384 enabled and no other curves:
+     *   STSE_ECC_KT_NIST_P_256 = 0, STSE_ECC_KT_NIST_P_384 = 1
+     * NOTE: If other curves are enabled or the order changes in STSELib,
+     *       these values may change. In that case, override the defaults
+     *       below by defining STSAFE_ECC_CURVE_P256 / STSAFE_ECC_CURVE_P384
+     *       (for example via compiler -D flags) to match the actual
+     *       STSE_ECC_KT_NIST_P_256 / STSE_ECC_KT_NIST_P_384 enum values. */
+    #ifndef STSAFE_ECC_CURVE_P256
+        #define STSAFE_ECC_CURVE_P256   0  /* Default: STSE_ECC_KT_NIST_P_256 */
+    #endif
+    #ifndef STSAFE_ECC_CURVE_P384
+        #define STSAFE_ECC_CURVE_P384   1  /* Default: STSE_ECC_KT_NIST_P_384 */
+    #endif

-                    if (curve_id != STSAFE_ECC_CURVE_P256 && curve_id != STSAFE_ECC_CURVE_P384) {
+                    if (curve_id != STSAFE_ECC_CURVE_P256 &&
+                        curve_id != STSAFE_ECC_CURVE_P384
+                    #ifdef STSAFE_ECC_CURVE_BP256
+                        && curve_id != STSAFE_ECC_CURVE_BP256
+                    #endif
+                    #ifdef STSAFE_ECC_CURVE_BP384
+                        && curve_id != STSAFE_ECC_CURVE_BP384
+                    #endif
+                       ) {

Add STSAFE-A120 Support #9614

Are you sure you want to change the base?

Add STSAFE-A120 Support #9614

Conversation

dgarske commented Jan 6, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Add STSAFE-A120 Support via STSELib

Description

Changes

Features

Configuration

Dependencies

API Compatibility

Testing

Performance (Raspberry Pi 5)

Notes

Related

Uh oh!

devin-ai-integration bot commented Jan 6, 2026

Uh oh!

dgarske commented Jan 7, 2026

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Uh oh!

dgarske commented Jan 12, 2026

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Pull request overview

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Pull request overview

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

dgarske commented Jan 16, 2026

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Pull request overview

Uh oh!

Uh oh!

dgarske commented Jan 16, 2026

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Pull request overview

Uh oh!

Copilot AI Jan 16, 2026

Choose a reason for hiding this comment

Uh oh!

Copilot AI Jan 16, 2026

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Copilot AI Jan 16, 2026

Choose a reason for hiding this comment

Uh oh!

Copilot AI Jan 16, 2026

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

dgarske commented Jan 6, 2026 •

edited

Loading